ilramdhan · ilramdhan · Mar 4, 2026 · Mar 4, 2026 · kilo-code-bot · Mar 4, 2026
diff --git a/internal/middleware/rate_limit.go b/internal/middleware/rate_limit.go
@@ -53,18 +53,15 @@ func (rl *RateLimiter) cleanupVisitors() {
 	ticker := time.NewTicker(5 * time.Minute)
 	defer ticker.Stop()
 
-	for {
-		select {
-		case <-ticker.C:
-			rl.mu.Lock()
-			for ip, limiter := range rl.visitors {
-				// Remove visitors that haven't been used recently
-				if limiter.TokensAt(time.Now()) == float64(rl.burst) {
-					delete(rl.visitors, ip)
-				}
+	for range ticker.C {
+		rl.mu.Lock()
+		for ip, limiter := range rl.visitors {
+			// Remove visitors that haven't been used recently
+			if limiter.TokensAt(time.Now()) == float64(rl.burst) {
+				delete(rl.visitors, ip)
 			}
-			rl.mu.Unlock()
 		}
+		rl.mu.Unlock()
 	}
 }
 

diff --git a/internal/services/auth_service.go b/internal/services/auth_service.go
@@ -58,7 +58,7 @@
 	if err != nil {
 		// Log failed login attempt
 		s.logAudit(nil, req.Username, models.ActionLoginFailed, models.ResourceAuth,
 			fmt.Sprintf("Login failed: user not found"), ipAddress, userAgent, false)
 		return nil, fmt.Errorf("invalid credentials")
 	}

@@ -66,14 +66,14 @@
 	if err := s.userRepo.CheckPassword(user.Password, req.Password); err != nil {
 		// Log failed login attempt
 		s.logAudit(&user.ID, user.Username, models.ActionLoginFailed, models.ResourceAuth,
 			fmt.Sprintf("Login failed: invalid password"), ipAddress, userAgent, false)
 		return nil, fmt.Errorf("invalid credentials")
 	}

 	// Check if user is active
 	if !user.IsActive {
 		s.logAudit(&user.ID, user.Username, models.ActionLoginFailed, models.ResourceAuth,
 			fmt.Sprintf("Login failed: account deactivated"), ipAddress, userAgent, false)
 		return nil, fmt.Errorf("account is deactivated")
 	}

@@ -93,7 +93,7 @@
 
 	// Log successful login
 	s.logAudit(&user.ID, user.Username, models.ActionLogin, models.ResourceAuth,
-		fmt.Sprintf("User logged in successfully"), ipAddress, userAgent, true)
+		"User logged in successfully", ipAddress, userAgent, true)
 
 	return authResponse, nil
 }

diff --git a/internal/services/holiday_service.go b/internal/services/holiday_service.go
@@ -171,7 +171,17 @@ func (s *holidayService) GetUpcomingHolidays(limit int) ([]models.Holiday, error
 	today := time.Now()
 	endDate := today.AddDate(1, 0, 0) // Next year
 
-	return s.repo.GetByDateRange(today, endDate, nil)
+	holidays, err := s.repo.GetByDateRange(today, endDate, nil)
+	if err != nil {
+		return nil, err
+	}
+
+	// Apply limit
+	if len(holidays) > limit {
+		holidays = holidays[:limit]
+	}
+
+	return holidays, nil
 }
 
 // GetHolidaysByYear gets holidays by specific year